Cisco Cisco Email Security Appliance C170 Betriebsanweisung
C H A P T E R
19-1
Cisco AsyncOS 9.0 for Email User Guide
19
S/MIME Security Services
•
•
•
Overview of S/MIME Security Services
Secure/Multipurpose Internet Mail Extensions (S/MIME) is a standards-based method for sending and
receiving secure, verified email messages. S/MIME uses public/private key pair to encrypt or sign
messages. This way,
receiving secure, verified email messages. S/MIME uses public/private key pair to encrypt or sign
messages. This way,
•
If the message is encrypted, only the message recipient can open the encrypted message.
•
If the message is signed, the message recipient can validate the identity of the sender’s domain and
can be assured that the message has not been altered while in transit.
can be assured that the message has not been altered while in transit.
For more information about S/MIME, review the following RFCs:
•
RFC 5750: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Certificate
Handling
Handling
•
RFC 5751: Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.2 - Message
Specification
Specification
•
RFC 3369: Cryptographic Message Syntax
S/MIME Security Services in AsyncOS for Email
Organizations may want to communicate securely using S/MIME without requiring that all end-users
possess their own certificates. For such organizations, AsyncOS provides S/MIME security services at
the gateway level. Using this feature, organizations can handle message signing, encryption, verification,
and decryption at the gateway level using certificates that identify the organization rather than the
individual.
possess their own certificates. For such organizations, AsyncOS provides S/MIME security services at
the gateway level. Using this feature, organizations can handle message signing, encryption, verification,
and decryption at the gateway level using certificates that identify the organization rather than the
individual.
AsyncOS provides the following S/MIME security services:
•
Sign, encrypt, or sign and encrypt messages using S/MIME. See
•
Verify, decrypt, or decrypt and verify messages using S/MIME. See
.